Skills
skills/phonebase-cloud/phonebase-skills/phonebase-skill-creator/Gen Agent Trust Hub

phonebase-skill-creator

Pass

Audited by Gen Agent Trust Hub on Apr 14, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATIONREMOTE_CODE_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill documents the pb.shell(cmd) method, which enables arbitrary shell command execution on connected Android devices for automation purposes, such as clearing input fields or dismissing dialogs.
  • [EXTERNAL_DOWNLOADS]: It details the pb.installPackage(opts) method, which supports downloading and installing Android APK files from remote URLs (e.g., https://...) onto the target device.
  • [DATA_EXFILTRATION]: Documentation is provided for pb.pullFile(path) and pb.clipboardGet(), which allow for reading files and clipboard content from the mobile device as part of the data extraction workflow.
  • [REMOTE_CODE_EXECUTION]: The skill describes a system where JavaScript scripts are authored on a host machine and executed to perform remote actions on a connected Android device through a Unix socket communication layer.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 14, 2026, 03:09 AM